Description
The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.
Extended Description
A weak encryption scheme can be subjected to brute force attacks that have a reasonable chance of succeeding using current attack methods and resources.
CVE vulnerabilities with CWE-326 (520)
10.0
CVSS
CRITICAL
CVE-2026-44523
pub. 2026-05-14
10.0
CVSS
CRITICAL
CVE-2025-12478
pub. 2025-10-29
10.0
CVSS
CRITICAL
CVE-2020-6966
pub. 2020-01-24
10.0
CVSS
CRITICAL
CVE-2019-16649
pub. 2019-09-21
10.0
CVSS
HIGH
CVE-2014-9199
pub. 2015-01-17
9.8
CVSS
CRITICAL
CVE-2022-45141
pub. 2023-03-06
9.8
CVSS
CRITICAL
CVE-2022-24116
pub. 2022-12-26
9.8
CVSS
CRITICAL
CVE-2022-3273
pub. 2022-10-06
9.8
CVSS
CRITICAL
CVE-2022-36555
pub. 2022-08-29
9.8
CVSS
CRITICAL
CVE-2022-30285
pub. 2022-08-02
9.8
CVSS
CRITICAL
CVE-2021-42216
pub. 2021-12-15
9.8
CVSS
CRITICAL
CVE-2020-14517
pub. 2020-09-16
9.8
CVSS
CRITICAL
CVE-2020-10275
pub. 2020-06-24
9.8
CVSS
CRITICAL
CVE-2013-7287
pub. 2020-02-13
9.8
CVSS
CRITICAL
CVE-2013-2166
pub. 2019-12-10
9.8
CVSS
CRITICAL
CVE-2011-4121
pub. 2019-11-26
9.8
CVSS
CRITICAL
CVE-2019-15805
pub. 2019-08-29
9.8
CVSS
CRITICAL
CVE-2019-15806
pub. 2019-08-29
9.8
CVSS
CRITICAL
CVE-2018-20810
pub. 2019-06-28
9.8
CVSS
CRITICAL
CVE-2019-10907
pub. 2019-04-07
Showing 20 of 520 vulnerabilities